decon-spf 0.3.3

This is a simple tool that allows you to deconstruct an existing SPF record that might be retreived in a normal DNS TXT lookup. With version 0.2.0 you can now also construct a new Spf record.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71

use crate::core;
use crate::mechanism::Kind;
use crate::spf::validate::Validate;
use crate::{Spf, SpfError};

impl Validate for Spf<String> {
    /// Validate that the version is one that is of a known type.
    fn validate_version(&self) -> Result<(), SpfError> {
        if self.version.starts_with(crate::core::SPF1)
            || self.version.starts_with(crate::core::SPF2_PRA)
            || self.version.starts_with(crate::core::SPF2_MFROM)
            || self.version.starts_with(crate::core::SPF2_PRA_MFROM)
            || self.version.starts_with(crate::core::SPF2_MFROM_PRA)
        {
            Ok(())
        } else {
            Err(SpfError::InvalidVersion)
        }
    }

    /// Check that Spf length does not exceed 512 bytes.
    /// if this length is exceeded DNS packet may fail.
    fn validate_length(&self) -> Result<(), SpfError> {
        if self.source.len() > crate::core::MAX_SPF_STRING_LENGTH {
            return Err(SpfError::SourceLengthExceeded);
        };
        Ok(())
    }

    /// Check for the existence of a `ptr` mechanism.
    ///  Results:
    ///     Ok If 'ptr' is not present.
    ///     SpfError::DeprecatedPtrPresent if present.
    /// A 'ptr' should generally not be used according to RFC...
    #[cfg(feature = "ptr")]
    fn validate_ptr(&self) -> Result<(), SpfError> {
        for m in self.iter() {
            if m.kind() == &Kind::Ptr {
                return Err(SpfError::DeprecatedPtrDetected);
            }
        }
        Ok(())
    }

    fn validate_redirect_all(&self) -> Result<(), SpfError> {
        if self.all_idx == self.redirect_idx {
            return Ok(());
        } else if self.all().is_some() && self.has_redirect {
            return Err(SpfError::RedirectWithAllMechanism);
        } else if (self.redirect_idx != self.len() - 1) && self.has_redirect {
            return Err(SpfError::RedirectNotFinalMechanism);
        }
        Ok(())
    }

    /// Check that the number of looks up does not exceed the limit: 10
    fn validate_lookup_count(&self) -> Result<(), SpfError> {
        let mut count: usize = 0;
        for m in self.iter() {
            match m.kind() {
                Kind::A | Kind::MX | Kind::Redirect | Kind::Include | Kind::Exists => count += 1,
                _ => {}
            }
        }
        if count < core::DNS_LOOKUP_LIMIT {
            Ok(())
        } else {
            Err(SpfError::LookupLimitExceeded)
        }
    }
}